Lucene search
K

9 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2022/12/13 1:10 a.m.25 views

Security Bulletin: Multiple vulnerabilities have been identified in Smack API shipped with IBM Tivoli Netcool Impact (CVE-2014-0363, CVE-2014-0364)

Summary Smack API is used by IBM Tivoli Netcool Impact as part of the Jabber service component. IBM Tivoli Netcool Impact has addressed the applicable CVEs. Vulnerability Details CVEID:CVE-2014-0363 DESCRIPTION: Ignite Realtime Smack API could allow a remote attacker to conduct spoofing attacks,...

5.8CVSS8.8AI score0.06242EPSS
Exploits0Affected Software1
OpenVAS
OpenVAS
added 2015/01/12 12:0 a.m.25 views

Fedora Update for smack FEDORA-2015-0046

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.8CVSS9.5AI score0.06242EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2014/12/15 12:0 a.m.26 views

Fedora Update for smack FEDORA-2014-16383

Check the version of smack SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.868607";...

6.8CVSS9.5AI score0.0123EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2014/12/15 12:0 a.m.27 views

Fedora 21 : smack-3.2.2-8.fc21 (2014-16312)

fix for CVE-2014-0363 rhbz1093274 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 ...

5.8CVSS7.3AI score0.0123EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2014/12/15 12:0 a.m.34 views

Fedora 20 : smack-3.2.2-6.fc20 (2014-16383)

fix for CVE-2014-0363 rhbz1093274 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 ...

5.8CVSS7.3AI score0.0123EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2014/06/30 8:51 p.m.49 views

Important: Red Hat Security Advisory: Red Hat JBoss BRMS 6.0.2 update

Red Hat JBoss BRMS 6.0.2, which fixes multiple security issues, various bugs, and adds enhancements, is now available from the Red Hat Customer Portal. The Red Hat Security Response Team has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base score...

7.5CVSS7.3AI score0.13809EPSS
Exploits2References7
RedHat Linux
RedHat Linux
added 2014/06/30 8:51 p.m.48 views

Important: Red Hat Security Advisory: Red Hat JBoss BPM Suite 6.0.2 update

Red Hat JBoss BPM Suite 6.0.2, which fixes multiple security issues, various bugs, and adds enhancements, is now available from the Red Hat Customer Portal. The Red Hat Security Response Team has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base...

7.5CVSS7.4AI score0.13809EPSS
Exploits2References6
CVE
CVE
added 2014/04/30 10:0 a.m.74 views

CVE-2014-0363

CVE-2014-0363 affects Ignite Realtime Smack XMPP API: ServerTrustManager fails to verify basicConstraints and nameConstraints in X.509 certificate chains from SSL servers, enabling MITM spoofing of servers and potential data leakage. The vulnerability is in the Smack API prior to 4.0.0-rc1. Remed...

5.8CVSS8.5AI score0.0123EPSS
Exploits0References7Affected Software1
CERT
CERT
added 2014/04/29 12:0 a.m.35 views

Ignite Realtime Smack XMPP API contains multiple vulnerabilities

Overview Ignite Realtime's Smack XMPP API ServerTrustManger trusts unauthorized SSL certificates CWE-358 and IQ requests do not verify the from attribute allowing anyone to spoof IQ responses. CWE-345 Description CWE-358:Improperly Implemented Security Check for Standard- CVE-2014-0363 The...

5.8CVSS9.1AI score0.06242EPSS
Exploits0References6
Rows per page
Query Builder